chkeyserverisklm

Use the chkeyserverisklm command to change the system-wide IBM® Security Key Lifecycle Manager key server configuration.

Syntax

Read syntax diagramSkip visual syntax diagram
>>- chkeyserverisklm -- ---------------------------------------->

>--+------------------------------------+--+------------+------><
   +- -devicegroup -- device_group -----+  '- -disable -'   
   +-+--------------------------------+-+                   
   | +- -sslcert -- certificate_file -+ |                   
   | '- -nosslcert -------------------' |                   
   '- -enable --------------------------'                   

Parameters

-devicegroup device_group
(Optional) Specifies a specific device group that the system uses with a key server. The value must be an alphanumeric string no more than 16 characters long.
Note: The specified device name must begin with a letter (not a number) and cannot contain an underscore.
-sslcert certificate_file
(Optional) Specifies the certificate authority (CA) certificate for the key server. The value must be an alphanumeric string.
-nosslcert
(Optional) Specifies that the CA certificate on the key server be deleted.
-enable
(Optional) Enables the specified key server type.
-disable
(Optional) Disables the specified key server type.
Important: Do not specify -disable with other parameters.

Description

This command changes the system-wide IBM Security Key Lifecycle Manager key server configuration.

An invocation example

chkeyserverisklm -devicegroup JVAR_IBRA -sslcert /dumps/CA_certificate.pem -enable

The resulting output:

No feedback

An invocation example

chkeyserverisklm -nosslcert

The resulting output:

No feedback